diff options
author | Eric Paris <eparis@redhat.com> | 2013-05-24 13:49:14 (GMT) |
---|---|---|
committer | Eric Paris <eparis@redhat.com> | 2013-11-05 16:08:09 (GMT) |
commit | 81407c84ace88368ff23abb81caaeacf050c8450 (patch) | |
tree | 16073582364ac97b798010640da348a68460b73d /include/uapi/linux/audit.h | |
parent | 83fa6bbe4c4541ae748b550b4ec391f8a0acfe94 (diff) | |
download | linux-fsl-qoriq-81407c84ace88368ff23abb81caaeacf050c8450.tar.xz |
audit: allow unsetting the loginuid (with priv)
If a task has CAP_AUDIT_CONTROL allow that task to unset their loginuid.
This would allow a child of that task to set their loginuid without
CAP_AUDIT_CONTROL. Thus when launching a new login daemon, a
priviledged helper would be able to unset the loginuid and then the
daemon, which may be malicious user facing, do not need priv to function
correctly.
Signed-off-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'include/uapi/linux/audit.h')
0 files changed, 0 insertions, 0 deletions